]>
git.ipfire.org Git - thirdparty/pdns.git/log
Remi Gacogne [Fri, 8 Dec 2023 16:19:12 +0000 (17:19 +0100)]
dnsdist: No need to multiply 1.0 in cache-miss ratio dynblocks
As suggested by Charles-Henri, thanks!
Remi Gacogne [Mon, 20 Nov 2023 19:16:34 +0000 (20:16 +0100)]
dnsdist: Yet more delinting
Remi Gacogne [Mon, 20 Nov 2023 16:01:09 +0000 (17:01 +0100)]
dnsdist: Format dnsdist-dynblocks.hh
Remi Gacogne [Fri, 17 Nov 2023 08:33:54 +0000 (09:33 +0100)]
dnsdist: More delinting
Remi Gacogne [Thu, 16 Nov 2023 09:53:42 +0000 (10:53 +0100)]
dnsdist: Require a minimum cache-hit ratio in `DynBlockRulesGroup:setCacheMissRatio()`
Remi Gacogne [Thu, 16 Nov 2023 09:53:20 +0000 (10:53 +0100)]
dnsdist: Delint test-dnsdistdynblocks_hh.cc
Remi Gacogne [Tue, 14 Nov 2023 15:42:14 +0000 (16:42 +0100)]
dnsdist: Add a cache-miss ratio dynamic block rule
This PR adds the `DynBlockRulesGroup:setCacheMissRatio()` method
which can be used to throttle clients exceeding a ratio of cache misses
for a minimum number of queries over a period of time.
Otto Moerbeek [Mon, 11 Dec 2023 08:11:05 +0000 (09:11 +0100)]
Merge pull request #13591 from rgacogne/ddist-unbreak
dnsdist: Fix compilation issue
Otto Moerbeek [Mon, 11 Dec 2023 07:14:18 +0000 (08:14 +0100)]
Merge pull request #13423 from phonedph1/patch-3
rec: Update performance.rst
Remi Gacogne [Fri, 8 Dec 2023 17:01:06 +0000 (18:01 +0100)]
dnsdist: Fix compilation issue
Introduced by a conflict between #12922 and #13556.
Remi Gacogne [Fri, 8 Dec 2023 16:14:24 +0000 (17:14 +0100)]
Merge pull request #13517 from rgacogne/ddist-proxy-protocol-per-bind
dnsdist: Allow enabling incoming PROXY protocol on a per-bind basis
Remi Gacogne [Fri, 8 Dec 2023 15:05:02 +0000 (16:05 +0100)]
Merge pull request #13556 from chbruyand/dnsdist-doh3
dnsdist: add support for incoming DNS over HTTP/3
Remi Gacogne [Fri, 8 Dec 2023 15:01:06 +0000 (16:01 +0100)]
Merge pull request #13583 from rgacogne/ddist-fix-race-async-test
dnsdist: Fix a race in the async regression tests
Remi Gacogne [Fri, 8 Dec 2023 15:00:48 +0000 (16:00 +0100)]
Merge pull request #13584 from rgacogne/ddist-network-listener-data
dnsdist: Fix a small race in the NetworkListener
Remi Gacogne [Thu, 7 Dec 2023 09:33:36 +0000 (10:33 +0100)]
dnsdist: Rename 'allowProxyProtocol' to 'enableProxyProtocol'
Remi Gacogne [Fri, 24 Nov 2023 08:27:39 +0000 (09:27 +0100)]
dnsdist: Delint dnsdist-tcp.cc
Remi Gacogne [Mon, 20 Nov 2023 16:23:43 +0000 (17:23 +0100)]
dnsdist: Fix a few clang-tidy warnings
Remi Gacogne [Mon, 20 Nov 2023 15:21:21 +0000 (16:21 +0100)]
dnsdist: Allow enabling incoming PROXY protocol on a per-bind basis
The per-bind option defaults to `true` as to not break existing
configuration, but setting `allowProxyProtocol=false` on a
`add*Local()` directive disables proxy-protocol handling for this
specific bind.
Remi Gacogne [Thu, 7 Dec 2023 10:58:06 +0000 (11:58 +0100)]
dnsdist: More delinting of the DoH3 code
Remi Gacogne [Tue, 5 Dec 2023 16:03:30 +0000 (17:03 +0100)]
dnsdist: Split the DoH3 event handling loop off the main one
Remi Gacogne [Tue, 5 Dec 2023 16:02:49 +0000 (17:02 +0100)]
dnsdist: Add showDOH3Frontends()
Remi Gacogne [Tue, 5 Dec 2023 14:50:52 +0000 (15:50 +0100)]
dnsdist: Fix clang-tidy warnings
Charles-Henri Bruyand [Tue, 5 Dec 2023 10:54:11 +0000 (11:54 +0100)]
dnsdist: doh3 clean some var names
Charles-Henri Bruyand [Mon, 4 Dec 2023 14:58:03 +0000 (15:58 +0100)]
dnsdist: doh3 add support for post queries
Charles-Henri Bruyand [Mon, 4 Dec 2023 13:04:31 +0000 (14:04 +0100)]
dnsdist: doh3 fix a few review points
Charles-Henri Bruyand [Mon, 4 Dec 2023 08:58:18 +0000 (09:58 +0100)]
dnsdist: doh3, appease the CI folks
Charles-Henri Bruyand [Mon, 4 Dec 2023 08:15:35 +0000 (09:15 +0100)]
dnsdist: add some words about doh3 in documentation
Charles-Henri Bruyand [Fri, 24 Nov 2023 16:59:55 +0000 (17:59 +0100)]
dnsdist: refactor some common code between doq/doh3
Charles-Henri Bruyand [Thu, 23 Nov 2023 13:43:29 +0000 (14:43 +0100)]
dnsdist: doh3 clarify fin usage
Remi Gacogne [Thu, 23 Nov 2023 13:36:48 +0000 (14:36 +0100)]
dnsdist: Handle HTTP/3 error responses
Remi Gacogne [Thu, 23 Nov 2023 13:35:56 +0000 (14:35 +0100)]
dnsdist: Refactor QUIC tests so that they can be used for DoQ and DoH3
Charles-Henri Bruyand [Wed, 22 Nov 2023 10:17:35 +0000 (11:17 +0100)]
dnsdist: enable doh3 in our CI
Charles-Henri Bruyand [Wed, 22 Nov 2023 10:13:00 +0000 (11:13 +0100)]
dnsdist: doh3, fix formating and clang-tidy warnings
Charles-Henri Bruyand [Wed, 22 Nov 2023 10:03:16 +0000 (11:03 +0100)]
dnsdist: add basic DoHTTP/3 test
Charles-Henri Bruyand [Tue, 21 Nov 2023 22:49:35 +0000 (23:49 +0100)]
dnsdist: add beta support for incoming DNS over HTTP/3
Charles-Henri Bruyand [Tue, 21 Nov 2023 22:42:13 +0000 (23:42 +0100)]
dnsdist: add doh3 protocol
Remi Gacogne [Thu, 7 Dec 2023 14:05:43 +0000 (15:05 +0100)]
dnsdist: Fix a race in the async regression tests
We need to make sure the listener is alive during the duration of
the test, and not destroyed by the garbage collector.
Remi Gacogne [Thu, 7 Dec 2023 15:54:37 +0000 (16:54 +0100)]
dnsdist: Delint dnsdist-lua-network.cc
Remi Gacogne [Thu, 7 Dec 2023 14:08:37 +0000 (15:08 +0100)]
dnsdist: Fix a small race in the NetworkListener
The main thread needs to be able to access the data even if the
NetworkListener object has been destroyed first, which usually only
happens when DNSdist is exiting, but could also happen earlier if
the Lua handle is garbage collected.
Otto Moerbeek [Thu, 7 Dec 2023 16:24:36 +0000 (17:24 +0100)]
Merge pull request #13587 from rgacogne/rec-dangling-ref-udp-callback
rec: Fix a dangling reference in Lua's UDP Query Response callback
Remi Gacogne [Thu, 7 Dec 2023 15:37:24 +0000 (16:37 +0100)]
rec: Fix a dangling reference in Lua's UDP Query Response callback
Introduced in
50bd111e3c78e2cc8c2aa916a1f9fc22699f1f60
Remi Gacogne [Thu, 7 Dec 2023 10:21:53 +0000 (11:21 +0100)]
Merge pull request #13529 from Habbie/mssql-credentials
auth CI: clarify that the mssql password is not a secret
Otto Moerbeek [Wed, 6 Dec 2023 10:17:54 +0000 (11:17 +0100)]
Merge pull request #13521 from omoerbeek/coverity20231120
rec: set of coverity fixes
20231120
Otto Moerbeek [Wed, 6 Dec 2023 10:15:53 +0000 (11:15 +0100)]
Remove redundant coverity annotation
Otto Moerbeek [Wed, 6 Dec 2023 09:43:28 +0000 (10:43 +0100)]
Merge pull request #13562 from omoerbeek/rec-prep-5.0.0-rc1
rec: prep 5.0.0 rc1
Otto Moerbeek [Wed, 6 Dec 2023 09:26:56 +0000 (10:26 +0100)]
US English
romeroalx [Wed, 6 Dec 2023 06:58:09 +0000 (07:58 +0100)]
Merge pull request #13530 from romeroalx/actions-debian-bookworm
GH Actions: build-and-test-all workflow on Debian Bookworm
Otto Moerbeek [Wed, 6 Dec 2023 06:38:27 +0000 (07:38 +0100)]
Remove redundant word
Co-authored-by: Neil Cook <neil.cook@noware.co.uk>
Alexis Romero [Wed, 16 Aug 2023 12:41:23 +0000 (14:41 +0200)]
run build-and-test-test-all workflow on debian bookworm
simplified package version
Remi Gacogne [Tue, 5 Dec 2023 15:25:50 +0000 (16:25 +0100)]
Merge pull request #13537 from rgacogne/ddist-packetcache-max-size
dnsdist: Make the max size of entries in the packet cache configurable
Remi Gacogne [Tue, 5 Dec 2023 14:38:16 +0000 (15:38 +0100)]
Merge pull request #13533 from rgacogne/ddist-document-responses-metric-changed
dnsdist: Document that the `responses` metric changed in 1.8
Remi Gacogne [Tue, 5 Dec 2023 14:35:35 +0000 (15:35 +0100)]
Merge pull request #13506 from rgacogne/ddist-proxy-protocol-ttls-tlv
dnsdist: Add an option to set the SSL proxy protocol TLV
Remi Gacogne [Tue, 5 Dec 2023 14:20:52 +0000 (15:20 +0100)]
dnsdist: Remove left-over commented code in test_Caching.py
Otto Moerbeek [Tue, 5 Dec 2023 11:25:40 +0000 (12:25 +0100)]
Apply suggestions from code review
Co-authored-by: Remi Gacogne <github@coredump.fr>
Otto Moerbeek [Tue, 5 Dec 2023 10:33:37 +0000 (11:33 +0100)]
Fine tune EOL policy
Remi Gacogne [Tue, 5 Dec 2023 10:02:38 +0000 (11:02 +0100)]
Merge pull request #13500 from rgacogne/ddist-addaction-makerule-magic
dnsdist: Improve `NetmaskGroupRule`/`SuffixMatchNodeRule`, deprecate `makeRule`
Otto Moerbeek [Tue, 5 Dec 2023 09:54:26 +0000 (10:54 +0100)]
Prep for rec-5.0.0-rc1
Remi Gacogne [Mon, 4 Dec 2023 14:41:42 +0000 (15:41 +0100)]
Merge pull request #13515 from rgacogne/ddist-suffix-visitor-set-action
dnsdist: Allow setting the action from `setSuffixMatchRule{,FFI}()`'s visitor
Remi Gacogne [Mon, 4 Dec 2023 10:31:38 +0000 (11:31 +0100)]
dnsdist: Add regression tests for deprecated but not yet removed items
Remi Gacogne [Mon, 4 Dec 2023 10:20:02 +0000 (11:20 +0100)]
dnsdist: Clarify the passing a string/list of strings to add*Action() is deprecated
Remi Gacogne [Thu, 16 Nov 2023 15:33:55 +0000 (16:33 +0100)]
dnsdist: Update the example configuration, as suggested by @phonedph1
Remi Gacogne [Thu, 16 Nov 2023 14:47:21 +0000 (15:47 +0100)]
dnsdist: Add regression tests for the new multiple strings syntax
Remi Gacogne [Thu, 16 Nov 2023 13:50:01 +0000 (14:50 +0100)]
dnsdist: Apply clang-tidy comments
Remi Gacogne [Thu, 16 Nov 2023 13:49:34 +0000 (14:49 +0100)]
dnsdist: Document that passing a string to add*Action is deprecated
Remi Gacogne [Thu, 16 Nov 2023 12:38:18 +0000 (13:38 +0100)]
dnsdist: Stop using `makeRule` in our tests
Remi Gacogne [Thu, 16 Nov 2023 12:05:31 +0000 (13:05 +0100)]
dnsdist: Improve `NetmaskGroupRule`/`SuffixMatchNodeRule`, deprecate `makeRule`
- `NetmaskGroupRule` now accepts a string or list of strings, instead of requiring the use of `newNMG`
- `SuffixMatchNodeRule` also accepts a string or list of strings, instead of requiring the use of `newSuffixMatchNode`
- Passing a string or list of strings to `addAction` is now deprecated
- `makeRule` is now deprecated
Remi Gacogne [Mon, 4 Dec 2023 12:57:20 +0000 (13:57 +0100)]
Merge pull request #13503 from rgacogne/ddist-nmg-add-nmg
dnsdist: Add `NetmaskGroup:addNMG()` to merge Netmask groups
Remi Gacogne [Mon, 4 Dec 2023 12:56:57 +0000 (13:56 +0100)]
Merge pull request #13509 from rgacogne/ddist-teeaction-proxyprotocol
dnsdist: Add Proxy Protocol v2 support to `TeeAction`
Remi Gacogne [Mon, 27 Nov 2023 13:17:01 +0000 (14:17 +0100)]
dnsdist: Delint test-dnsdistpacketcache_cc.cc a bit more
Remi Gacogne [Fri, 24 Nov 2023 15:56:30 +0000 (16:56 +0100)]
dnsdist: Delint test-dnsdistpacketcache_cc.cc
Remi Gacogne [Fri, 24 Nov 2023 14:48:24 +0000 (15:48 +0100)]
dnsdist: Make the max size of entries in the packet cache configurable
It used to be set to 4096 bytes, which is also a hard limit for UDP
responses anyway, because of the internal buffer size, but the limit
can now be raised for responses received over TCP (including DoT and
DoH).
Otto Moerbeek [Mon, 4 Dec 2023 12:26:25 +0000 (13:26 +0100)]
Merge pull request #13557 from omoerbeek/rec-docs-yaml-not-experimental
rec: Remove experimental warnings for YAML
Otto Moerbeek [Mon, 4 Dec 2023 11:25:55 +0000 (12:25 +0100)]
rec: Remove experimental warnings for YAML
YAML settings are no longer experimental, but still only used if a `recursor.yml` file is found in the config dir.
Otto Moerbeek [Mon, 4 Dec 2023 10:09:21 +0000 (11:09 +0100)]
Merge pull request #13507 from omoerbeek/rec-allow-rd0
rec: disallow (by answering Refused) RD=0 by default
Remi Gacogne [Mon, 4 Dec 2023 10:06:59 +0000 (11:06 +0100)]
dnsdist: Document the content of proxy payload added via TeeAction
Remi Gacogne [Mon, 4 Dec 2023 10:03:10 +0000 (11:03 +0100)]
Merge pull request #13522 from rgacogne/coverity-auto-copy-move-2
Fix unnecessary copies reported by Coverity (round 2)
Remi Gacogne [Fri, 1 Dec 2023 13:29:52 +0000 (14:29 +0100)]
dnsdist: Better description suggested by Otto in the documentation
Co-authored-by: Otto Moerbeek <otto.moerbeek@open-xchange.com>
Remi Gacogne [Fri, 1 Dec 2023 13:29:31 +0000 (14:29 +0100)]
dnsdist: Fix a spurious whitespace
Co-authored-by: Otto Moerbeek <otto.moerbeek@open-xchange.com>
Remi Gacogne [Thu, 16 Nov 2023 16:16:14 +0000 (17:16 +0100)]
dnsdist: Add `NetmaskGroup:addNMG()` to merge Netmask groups
Otto Moerbeek [Mon, 4 Dec 2023 08:24:18 +0000 (09:24 +0100)]
Add test for RD=0 is disallowed by default and basic RD=1 processing
Otto Moerbeek [Fri, 1 Dec 2023 18:44:22 +0000 (19:44 +0100)]
Merge pull request #13543 from omoerbeek/rec-aggr-nsec3-empty
rec: a single NSEC3 record covering everything is a special case
Remi Gacogne [Fri, 1 Dec 2023 15:25:06 +0000 (16:25 +0100)]
Merge pull request #13505 from rgacogne/ddist-getaddressinfo
dnsdist: Add `getAddressInfo()` for asynchronous DNS resolution
Remi Gacogne [Fri, 1 Dec 2023 15:24:55 +0000 (16:24 +0100)]
Merge pull request #13527 from rgacogne/ci-coverage-pdns-only
build-and-test-all: Restrict Coveralls code coverage to the main repo
Peter van Dijk [Fri, 1 Dec 2023 14:51:23 +0000 (15:51 +0100)]
Merge pull request #13550 from PowerDNS/dependabot/pip/pdns/keyroller/urllib3-1.26.18
build(deps): bump urllib3 from 1.26.13 to 1.26.18 in /pdns/keyroller
Peter van Dijk [Fri, 1 Dec 2023 14:50:36 +0000 (15:50 +0100)]
Merge pull request #13549 from PowerDNS/dependabot/pip/pdns/keyroller/certifi-2023.7.22
build(deps): bump certifi from 2022.12.7 to 2023.7.22 in /pdns/keyroller
Peter van Dijk [Fri, 1 Dec 2023 14:49:03 +0000 (15:49 +0100)]
Merge pull request #13547 from PowerDNS/dependabot/pip/docs/certifi-2023.7.22
build(deps): bump certifi from 2023.5.7 to 2023.7.22 in /docs
Peter van Dijk [Fri, 1 Dec 2023 14:44:55 +0000 (15:44 +0100)]
Merge pull request #13551 from romeroalx/enable-pkcs11-tests
GH Actions: enable back variant bind-dnssec-pkcs11 for auth-backend tests
Remi Gacogne [Fri, 1 Dec 2023 13:36:06 +0000 (14:36 +0100)]
Merge pull request #13536 from rgacogne/dnsdist-detect-truncation-backend-udp-response
dnsdist: Detect and dismiss truncated UDP responses from a backend
Remi Gacogne [Fri, 1 Dec 2023 13:32:35 +0000 (14:32 +0100)]
dnsdist: Better description for `getAddressInfo()`
Co-authored-by: Otto Moerbeek <otto.moerbeek@open-xchange.com>
Remi Gacogne [Fri, 1 Dec 2023 13:30:23 +0000 (14:30 +0100)]
tcpreceiver: Remove a spurious whitespace spotted by Otto
Co-authored-by: Otto Moerbeek <otto.moerbeek@open-xchange.com>
romeroalx [Fri, 1 Dec 2023 10:06:56 +0000 (11:06 +0100)]
build-and-test-all: Enable test bind-dnssec-pkcs11
Otto Moerbeek [Fri, 1 Dec 2023 09:15:09 +0000 (10:15 +0100)]
Add test
Otto Moerbeek [Wed, 29 Nov 2023 15:47:01 +0000 (16:47 +0100)]
rec: a single NSEC3 record covering everything is a special case
Fixes #13542
Peter van Dijk [Fri, 1 Dec 2023 08:46:48 +0000 (09:46 +0100)]
Merge pull request #13062 from Habbie/auth-loglevel-prefix
auth: add loglevel-show setting
Remi Gacogne [Thu, 30 Nov 2023 16:07:15 +0000 (17:07 +0100)]
build-and-test-all: Do not generate coverage info when coverage is disabled
Many thanks to @romeroalx for spotting this!
Peter van Dijk [Thu, 30 Nov 2023 16:06:32 +0000 (17:06 +0100)]
Merge pull request #13546 from zeha/authtestruntestabort
auth tests: abort if runtests is used incorrectly
dependabot[bot] [Thu, 30 Nov 2023 15:10:07 +0000 (15:10 +0000)]
build(deps): bump urllib3 from 1.26.13 to 1.26.18 in /pdns/keyroller
Bumps [urllib3](https://github.com/urllib3/urllib3) from 1.26.13 to 1.26.18.
- [Release notes](https://github.com/urllib3/urllib3/releases)
- [Changelog](https://github.com/urllib3/urllib3/blob/main/CHANGES.rst)
- [Commits](https://github.com/urllib3/urllib3/compare/1.26.13...1.26.18)
---
updated-dependencies:
- dependency-name: urllib3
dependency-type: indirect
...
Signed-off-by: dependabot[bot] <support@github.com>
dependabot[bot] [Thu, 30 Nov 2023 15:09:47 +0000 (15:09 +0000)]
build(deps): bump certifi from 2022.12.7 to 2023.7.22 in /pdns/keyroller
Bumps [certifi](https://github.com/certifi/python-certifi) from 2022.12.7 to 2023.7.22.
- [Commits](https://github.com/certifi/python-certifi/compare/2022.12.07...2023.07.22)
---
updated-dependencies:
- dependency-name: certifi
dependency-type: indirect
...
Signed-off-by: dependabot[bot] <support@github.com>
dependabot[bot] [Thu, 30 Nov 2023 15:08:56 +0000 (15:08 +0000)]
build(deps): bump certifi from 2023.5.7 to 2023.7.22 in /docs
Bumps [certifi](https://github.com/certifi/python-certifi) from 2023.5.7 to 2023.7.22.
- [Commits](https://github.com/certifi/python-certifi/compare/2023.05.07...2023.07.22)
---
updated-dependencies:
- dependency-name: certifi
dependency-type: indirect
...
Signed-off-by: dependabot[bot] <support@github.com>
Remi Gacogne [Thu, 30 Nov 2023 15:08:04 +0000 (16:08 +0100)]
Merge pull request #13539 from PowerDNS/dependabot/github_actions/actions/checkout-4
build(deps): bump actions/checkout from 3 to 4